Where There Is Porn, There Are Zlobs

[plun]

Where There Is Porn, There Are Zlobs
posted by: Jessie Paz, 10/12/2006

Just recently, we have received reports of in-the-wild
variants of TROJ_ZLOBS messing into the systems of various
users. Worst is they are not aware of it . As what we have
noticed so far, Zlobs have been successful in their social
engineering tactics that more unsuspecting users were
deceived to accept, download, and/or execute the malware.
The affected users were tricked into believing that the
files they had are the legitimate ones.


Just a while ago, TrendLabs has received a report that a
particular porn site is offering a free utility that offers
free and unlimited access to porn media but as it turns out,
you will have just allowed yourself to be infected by this
critter. From the scenario, it is not a web browser
vulnerability that is being used to get you infected, but a
human vulnerability. It is sad that the latter vulnerability
has no 'patch tuesday' nor regular upgrades. It is even in
our genes, sometimes... But, what we can do at least is to
be aware of safe computing practices, read latest security
blogs (just like ours), and regular updates of application
programs and antivirus signatures. So, be careful next time,
ok!


http://servicecenter.antivirus.com/malwareblog/diary/

----------------------------------------------

a human vulnerability.....

regards
plun

 

[Dave M]

....as we say in the USA,

keep your ZLOBs in your pants.

 

[Guest]

Best place for them .... that way they won`t propagate

Nasty !!

Stu

 

[robin]

well where there is porn- if you are stupid enough to go there you deserve
what you get
my opinion
robin

 

[Guest]

Ouch !!

Stu

well where there is porn- if you are stupid enough to go there you deserve
what you get
my opinion
robin

 

[plun]

hehe

I found a "que" with zlobs one night

The "funny" thing is that noone discuss this but in every
cleaning forum
youll see sextrackers and pron junk in every logfile....a
lots of users probably directly
visits the same junk station... haha ...

regards
plun

Stu skrev:

 

[Guest]

Mr William Gates (more affectionately known as Bill), takes Zlob very
seriously. MRT.exe can detect the presence of W32/Zlob - Zotob too ! You will
notice I didn`t say. "Remove from your system".

Stu

 

[Bill Sanderson MVP]

If the MRT finds it, you can call 1-866-pcsafety and get help getting it out
of there.

--

 

[Guest]

Forgive me for not being familiar with the USA STD system. BUT, I hope that`s
not a premium rate number you`ve passed on there Bill.

Stu

 

[Bill Sanderson MVP]

Ah - I should have expanded it. That number is a free call in the U.S. or
Canada. Elsewhere, equivalent help is available, but the telephone call
itself may not be free. Call your local Microsoft subsidiary or the number
for paid support in your locale, and ask for the free help with virus or
security-patch related issues.

--

 

[Guest]

Robin,

We went this route before and you said you were kidding, "lighten up"!
If you want to be a good systems support person you can't judge your users
this way and if you really feel:

"if you are stupid enough to go there you deserve what you get my opinion"

Then you are in the wrong business!

I think that people that use "Beta" software in their work environment are
Stupid. What does that make you? I do not judge you. You have chosen to
take the risk. Hopefully you could deal with it if a false alarm from
Defender that shut down your working enviorment.

What "they" get, affects us all, Trojans spread!
People come here looking for support. I choose not to judge how they got
infected. I can offer suggestions about what they should or should not do
from a safety point of view but for you to make a statement like "deserve
what you get" lowers my opinion of you greatly!

Tim

 

[plun]

Hi all

Well, high time for *McGruff* to learn users about this
swamp....

http://bytecrime.org/index.html


Make him worldwide (maybe without McAfee )

regards
plun


Bill Sanderson MVP skrev:

 

[Guest]

Hi Plun

Is `McGruff` related to Scotty (a seemingly wirey terrier) of WinPatrol?
And, what species would you envisage him as being? British Bulldog? If
`guard` is the inference, perhaps Alsatian or Bitbull would be more
appropriate? ; McGruff looks more like a Bloodhound to me.

Stu

 

[robin]

I got one better.
Happened last yr.
Went to a client to figure out why her computer was running so slow.
Checked for viruses- non
Put antispyware programs on and found lots of malware especially from porn
sites.
Now thought to myself, this is a mother with 2 small children, why would she
go to so many porn sites.
Well, I looked further and found loads of temp files which I cleaned up and
checked the box to show Hidden files- and low and behold there was a
subfolder buried deep in one of the system files, loaded with about 400 porn
files. Now I go and take a look at what is there and I am shocked. (btw
she does have a husband). The porn there was so nasty (men having sex with
children) I almost threw up. I asked her if this was her files and she was
as shocked as I was when i showed one to her. I told her not only was this
disgusting but it was illegal and I would not continue to clean up her
computer until she gave me permission to delete all of them. She told me
she wanted to show them to her husband first then she would call me back to
delete them.
I told her she had 3 days to do this otherwise I was going to call the local
authority and report them.
I waited the 3 days and never heard from her, called her and left a
message.. I figured maybe she was busy having 2 small children or maybe she
threw her husband out and was filing for divorce since I would be very leery
having 2 little girls around him, so I gave her a few more days and called
again, to no avail.
Well I was not going to wait anymore so I called her local police dept and
explained what I had found on her computer.
This real nice police officer called me a few days later and told me they
had confiscated their computer and now he was facing criminal charges.
Imagine what you can find on computers- ah?
robin

 

[robin]

btw I am a McGruff house mom
children that feel threatened by someone will see my sign in the window and
know I am a safe house for them to go to. Children here in NJ in school are
taught that if they see this sign in a home window they know that home is
safe.
We that belong to McGruff are investigated by the FBI to make sure we are
"safe" , I have to go to 6hrs of training, and am fingerprinted with the
local authorites.

robin

 

[robin]

tim, I am just against anyone going to porn sites. I was not judging them,
this is only my opinion because I have seen the problems it creates first
hand. If you need it that desperately, get a book (a book or magazine
doesn't promote malware or trojans). you can even get a video if you need it
that bad.
Porn sites are the best places to put trojan programs on and you can read
this all over the internet. It is like saying if you jump into fire you will
burn and if you are stupid enough to jump into fire you deserve what you
get.

robin

 

[Guest]

"If you are stupid enough to go there you _deserve_ what you get..."

"If you are stupid enough to jump into fire you deserve what you get"


ergo?

if a women is stupid enough to wear enticing clothing ...
if a black man is stupid enough to go into an all white neighborhood ...
if a white man is stupid enough to go into an all black neighborhood ...
if a gay man is stupid enough to come out to his boss ...
if someone is stupid enough to have sex without a condom ...

if someone is stupid enough to open an email attachment ...

If someone is stupid enough to use Windows instead of a Safer system like
Mac or Unix...

?????

 

[robin]

wait a sec you are taking that way too far
my example of fire has nothing to do with racial injustices, or anything
else you said.
well maybe about the Windows part- especially if you are a mac user <g>
I get that one all the time from Mac users. Yet I am a full Windows user.

I am basically saying after reading everything you see online about going to
bad sites especially porn sites where the infestation sits more likely, "if
after reading everything and you disregard the warnings and you still go
there- well then you deserve what you wind up with.
Better not to go there in the first place.
robin

 

[plun]

Hi Tim

The prOn swamp, mostly Free XXX sites are a "bloody" mess
for a PC today.
I am also against all form of censorship except crime
related sites.

Should our security vendors engineers work mostly with this
junk or
with Haxdoors, backdoors, zombies, worms etc ?? ie *real*
threats.

Or is it "high time" to learn users about this mess..... ?

Or maybe start a war between "respected" prOn pay services and
FreeXXX ?

I must say that users which visits Free XXX sites are stupid
users and
they must learn that this is a stupid behavior and nothing else.

So send out McGruff with this mission.....

At least our young generation are maybe so smart so they
understands this !?

regards
plun


Tim Clark skrev:

 

[Guest]

I must say that users which visits Free XXX sites are stupid
users and
they must learn that this is a stupid behavior and nothing else.

My only question here (and I'm going to sound terribly naiive) is: since I
have no idea what a 'FreeXXX' site is, am I likely to stumble on one by
chance, perhaps through an accidental Googling mistake?

Obviously I've lived a very sheltered life!